Best of Computer Forensics Tutorials

This article compiles a broad collection of computer forensics tutorials, covering memory analysis, disk imaging, and OS-level investigations. It highlights practical guides across Windows, Android, and Linux using tools such as Volatility, Autopsy, and FTK Imager for incident response and digital investigations #Windows #Android #Linux

Keypoints

Memory forensics using Volatility is a core capability highlighted in the collection.
The tutorials cover imaging, data collection, and preservation of evidence across multiple platforms.
Windows, Linux, and Android forensics are addressed through a wide range of tools and techniques.
Anti-forensic concepts like timestomp are discussed to illustrate challenges to evidence integrity.
Artifact-focused investigations include shellbags, pagefile.sys, registry analysis, and social media data.

Best of Computer Forensics Tutorials – Good Source from Raj Chandel’s Blog

Comprehensive Guide on Autopsy Tool (Windows)
Memory Forensics using Volatility Workbench
Comprehensive Guide on FTK Imager
Memory Forensics: Using Volatility Framework
Forensic Investigation: Shellbags
Forensic Investigation: Pagefile.sys
Forensic Investigation: Disk Drive Signature
Forensic Investigation : Prefetch File
Fast Incident Response and Data Collection
Digital Forensics: An Introduction (Part 2)
Digital Forensics: An Introduction
Forensic Investigation: Preserve TimeStamp
USB Forensics: Detection & Investigation
Anti-Forensic: Swipe Footprint with Timestomp
Forensic Investigation: Autopsy Forensic Browser in Linux
Forensic Investigation: Examine Corrupt File Metadata
Forensic Investigation: Windows Registry Analysis
Forensic Investigation: Ghiro for Image Analysis
Forensic Investigation: Examining Corrupted File Extension
Forensic Investigation: Extract Volatile Data (Manually)
Multiple Ways to Mount Raw Images (Windows)
Forensic Investigation of Social Networking Evidence using IEF
Multiple Ways to Create Image file for Forensics Investigation
Multiple ways to Capture Memory for Analysis
Digital Forensics Investigation through OS Forensics (Part 3)
Convert Virtual Machine to Raw Images for Forensics (Qemu-Img)
Digital Forensics Investigation through OS Forensics (Part 2)
Digital Forensics Investigation using OS Forensics (Part1)
Forensic Imaging through Encase Imager
Forensic Data Carving using Foremost
Network Packet Forensic using Wireshark
Forensics Tools in Kali
Mobile Forensics Investigation using Cellebrite UFED
Forensic Investigation of Any Mobile Phone with MOBILedit Forensic
Android Mobile Device Forensics with Mobile Phone Examiner Plus
How to Retrieve Saved Password from RAW Evidence Image
How to Create a Forensic Image of Andorid Phone using Magnet Acquire
Forensics Investigation of Android Phone using Andriller
Logical Forensics of an Android Device using AFLogical
SANTOKU Linux- Overview of Mobile Forensics Operating System
How to Recover Deleted File from RAW Image using FTK Imager and Recover My File
Forensic Investigation of RAW Image using Forensics Explorer (Part 1)
Forensic Investigation Tutorial Using DEFT
Forensics Investigon of RAW Images using Belkasoft Evidence Center
How to Clone Drive for Forensics Purpose
Comparison of two Files for forensics investigation by Compare IT
How to Install Digital Forensics Framework in System
How to Create Drive Image for Forensic Purpose using Forensic Replicator
Outlook Forensics Investigation using E-Mail Examiner
How to Create and Convert RAW Image in Encase and AFF Format using Forensics Imager
How to Mount Forensics image as a Drive using P2 eXplorer Pro
How to Convert Encase, FTK, DD, RAW, VMWare and other image file as Windows Drive
How to gather Forensics Investigation Evidence using ProDiscover Basic
How to Collect Forensics Evidence of PC using P2 Commander (Part 1)
How to Create Forensics Image of PC using R-Drive Image
How to Collect Telephonic Evidence in Victim PC
How to Collect Email Evidence in Victim PC (Email Forensics)
Forensics Analysis of Social Media Sites like Facebook, Twitter, LinkedIn